Dickey’s Barbecue Restaurants Data Breach Class Action

This class action brings suit against Dickey’s Barbecue Restaurants, Inc. for a data breach the company suffered between 2019 and 2020. As a result, the complaint alleges, “leading cybersecurity expert Krebs on Security … reports that highly sensitive consumer card information for an estimated 3 million payment cards used at Dickey’s restaurant locations during the Data Breach are available for purchase on the notorious dark web commerce site Joker’s Stash.”

The class for this action is all persons who used a credit or debit card at a Dickey’s that suffered the data breach during the period of the data breach.

The exposed information, the complaint claims, involves a great deal of credit and debit card information, including card numbers, expiration dates, cardholder names, internal card verification codes, and other payment card information.

Dickey’s initial statement on the data breach, issued on October 15, 2020, was vague and did not contain much detail. The complaint quotes a portion of it as saying, “We received a report indicating that a payment card security incident may have occurred and immediately initiated our response protocol… We understand that payment card network rules generally provide that individuals who timely report unauthorized charges to the bank that issued their card are not responsible for those charges.”

Dickey’s is purportedly investigating.

However, the complaint alleges, “Early reports from leading cyber intelligence firms Gemini Advisory and Q6Cyber indicate that the breach is massive in scope and duration.” According to the complaint, Gemini’s report said the data breach involves compromised payment systems in 156 restaurant locations in thirty states, with the exposure lasting more than a year—between July 2019 and August 2020. However, the Q6Cyber report speculated that the dates of exposure may have been as long as seventeen months, from May 2019 through September 2020.

Dickey’s has not confirmed the magnitude or the dates of the breach. However, a chart in the complaint, from ZDNet, shows the total number of Dickey’s locations in various states and the number of those believed to have had compromised systems.

The complaint alleges that the data breach was caused by “Dickey’s inadequate data security measures and cavalier approach to data security.” Unfortunately, it also alleges that Dickey’s “has not offered meaningful assistance to consumers to help deal with the fraud that has and will continue to result from the Data Breach.” Not only has it not provided credit monitoring or fraud insurance, the complaint says, it has also not yet provided those involved with a proper notice of the data breach.

Article Type: Lawsuit
Topic: Privacy

Most Recent Case Event

Dickey’s Barbecue Restaurants Data Breach Complaint

November 16, 2020

This class action brings suit against Dickey’s Barbecue Restaurants, Inc. for a data breach the company suffered between 2019 and 2020. As a result, the complaint alleges, “leading cybersecurity expert Krebs on Security … reports that highly sensitive consumer card information for an estimated 3 million payment cards used at Dickey’s restaurant locations during the Data Breach are available for purchase on the notorious dark web commerce site Joker’s Stash.”

Dickey’s Barbecue Restaurants Data Breach Complaint

Case Event History

Dickey’s Barbecue Restaurants Data Breach Complaint

November 16, 2020

This class action brings suit against Dickey’s Barbecue Restaurants, Inc. for a data breach the company suffered between 2019 and 2020. As a result, the complaint alleges, “leading cybersecurity expert Krebs on Security … reports that highly sensitive consumer card information for an estimated 3 million payment cards used at Dickey’s restaurant locations during the Data Breach are available for purchase on the notorious dark web commerce site Joker’s Stash.”

Dickey’s Barbecue Restaurants Data Breach Complaint
Tags: Exposing Private Information, Exposure to cyber crime, Your Privacy